{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2017-12778","title":"Title"},{"category":"description","text":"The UI Lock feature in qBittorrent version 3.3.15 is vulnerable to Authentication Bypass, which allows Attack to gain unauthorized access to qBittorrent functions by tampering the affected flag value of the config file at the C:\\Users\\<username>\\Roaming\\qBittorrent pathname. The attacker must change the value of the \"locked\" attribute to \"false\" within the \"Locking\" stanza. NOTE: This is an intended behavior. See https://github.com/qbittorrent/qBittorrent/wiki/I-forgot-my-UI-lock-password","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2017-12778","url":"https://www.suse.com/security/cve/CVE-2017-12778"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1134985 for CVE-2017-12778","url":"https://bugzilla.suse.com/1134985"}],"title":"SUSE CVE CVE-2017-12778","tracking":{"current_release_date":"2025-07-08T00:23:25Z","generator":{"date":"2023-02-15T04:41:30Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2017-12778","initial_release_date":"2023-02-15T04:41:30Z","revision_history":[{"date":"2023-02-15T04:41:30Z","number":"2","summary":"Current version"},{"date":"2025-01-01T08:37:11Z","number":"3","summary":"Current version"},{"date":"2025-02-18T07:37:13Z","number":"4","summary":"Current version"},{"date":"2025-07-08T00:23:25Z","number":"5","summary":"Current version"}],"status":"interim","version":"5"}}}